Overview

overview

10

Static

static

10

salikhack.exe

windows7-x64

10

salikhack.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a456f1d4fa5aa51e8605e6fcb43579c41593c6ae7eb110c5bbdddd071b3ab1f8.rar

  • Size

    6.2MB

  • MD5

    6f931c28532be11c8492783d89b4cc84

  • SHA1

    955ce2909398152312137f700c4449ad7069771a

  • SHA256

    a456f1d4fa5aa51e8605e6fcb43579c41593c6ae7eb110c5bbdddd071b3ab1f8

  • SHA512

    b7c9dd2eee7f18c7c4cbff70fd8870a9d6ed754a69ce31c2cfa54c608a0717f0986cf59a1426dc4718fb2fe4364d650961e13c4335d477cdbd39396fe794a75b

  • SSDEEP

    196608:QQEKh6tL/aLnXFDJ82PDIC3Xnhs/AvA8HZnL:QlKEtL/cFDytC3Xn5vpZL

Score
10/10
blackmoonpoullight

Malware Config

Signatures

  • Blackmoon family
    blackmoon
  • Detect Blackmoon payload 1 IoCs
  • Poullight Stealer payload 1 IoCs
  • Poullight family
    poullight
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • a456f1d4fa5aa51e8605e6fcb43579c41593c6ae7eb110c5bbdddd071b3ab1f8.rar
    .rar
  • salikhack.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections